Analytic Rules

• Microsoft Sentinel: From Logs to Alerts - Creating Your First Analytic Rule

• How to Bulk Enable All Sentinel Analytic Rules (The Easy Way)

Show more →

Automation

• Microsoft Sentinel: Let the Robots Do the Work - Your First Automation Playbook

• How to Bulk Enable All Sentinel Analytic Rules (The Easy Way)

• Microsoft Sentinel: How to Nuke a Noisy Incident Queue

Show more →

Azure

• So You've Deployed Sentinel. Now What? A Guide to Data Connectors

Show more →

Career Advice

• How to Nail Your First SOC Analyst Interview (Professor's Notes)

Show more →

Cheatsheet

Show more →

Data Connectors

• So You've Deployed Sentinel. Now What? A Guide to Data Connectors

Show more →

Getting Started

• How to create Microsoft Sentinel

• So You've Deployed Sentinel. Now What? A Guide to Data Connectors

• Microsoft Sentinel: From Logs to Alerts - Creating Your First Analytic Rule

• Microsoft Sentinel: An Incident Just Fired. Now What? (A Beginner's Guide to Investigation)

Show more →

Incident Response

• Microsoft Sentinel: An Incident Just Fired. Now What? (A Beginner's Guide to Investigation)

Show more →

Interview Prep

• How to Nail Your First SOC Analyst Interview (Professor's Notes)

Show more →

KQL

• Microsoft Sentinel: From Logs to Alerts - Creating Your First Analytic Rule

• Microsoft Sentinel: An Incident Just Fired. Now What? (A Beginner's Guide to Investigation)

• KQL : A Beginner's Guide to Talking to Your Data

• Microsoft Sentinel's Secret Weapon: Your First Watchlist

Show more →

Logic Apps

• Microsoft Sentinel: Let the Robots Do the Work - Your First Automation Playbook

Show more →

Microsoft Sentinel

• How to create Microsoft Sentinel

• A Day in the Life of a SOC Analyst

• So You've Deployed Sentinel. Now What? A Guide to Data Connectors

• Microsoft Sentinel: From Logs to Alerts - Creating Your First Analytic Rule

• Microsoft Sentinel: An Incident Just Fired. Now What? (A Beginner's Guide to Investigation)

Show more →

MSSP

• A Day in the Life of a SOC Analyst

Show more →

Playbook

• Microsoft Sentinel: Let the Robots Do the Work - Your First Automation Playbook

Show more →

PowerShell

• How to Bulk Enable All Sentinel Analytic Rules (The Easy Way)

• Microsoft Sentinel: How to Nuke a Noisy Incident Queue

Show more →

Security Operations

• A Day in the Life of a SOC Analyst

• Microsoft Sentinel: How to Nuke a Noisy Incident Queue

Show more →

SOC

• How to Nail Your First SOC Analyst Interview (Professor's Notes)

• A Day in the Life of a SOC Analyst

• Microsoft Sentinel: How to Nuke a Noisy Incident Queue

Show more →

Threat Hunting

• KQL : A Beginner's Guide to Talking to Your Data

Show more →

Watchlist

• Microsoft Sentinel's Secret Weapon: Your First Watchlist

Show more →